pXRay

PXRay

pXRay is an open-source tool for automating security scans and audits of web applications. It can crawl sites to map out all pages and assets, identify vulnerabilities like XSS and SQLi, check for weak passwords and misconfigurations, and generate reports.
Security & Privacy Vulnerability Scanner
web-security vulnerability-scanning penetration-testing
PXRay alternatives ➤

pXRay: Open-source Web Application Security Scanner

Automate security scans and audits of web applications with pXRay, identifying vulnerabilities like XSS and SQLi, weak passwords, and misconfigurations.

What is PXRay?

pXRay is an open source web application security scanner designed for bug bounty hunters and penetration testers. It provides automated crawling, scanning, and reporting to help analysts thoroughly test web apps for vulnerabilities.

Key features of pXRay include:

  • Crawling - Maps out all pages, URLs, forms, assets, and attack surfaces in a web application.
  • Scanning - Performs over 30 checks and scans for SQLi, XSS, command injection, XXE, SSRF, IDOR, and other common web app bugs.
  • Intelligent detection - Uses techniques like fuzzing, payload injection, and data mining to accurately identify flaws.
  • Authentication - Can login to web apps using credentials or sessions to access restricted areas.
  • Reporting - Generates full reports detailing all findings, affected parameters, CWE classifications, remediation steps.
  • Extendable - Open source code and API for writing new plugins and custom scan modules.

pXRay aims to combine an easy-to-use interface with advanced capabilities for finding security issues missed by other tools. It allows analysts to thoroughly test complex modern web apps with minimal setup and effort.

PXRay Features

Features

  1. Automated security scanning
  2. Vulnerability detection (XSS, SQLi, etc)
  3. Web app crawling
  4. Password strength checking
  5. Misconfiguration checks
  6. Customizable scans
  7. Reporting

Pricing

  • Open Source

Pros

Open source

Easy to use

Fast and thorough scanning

Wide range of checks

Flexible configuration

Detailed reports

Cons

Command line only (no GUI)

Setup requires some technical knowledge

Limited remediation recommendations

Official Links

Official Website
https://pxray.com

The Best PXRay Alternatives

Top Security & Privacy and Vulnerability Scanner and other similar apps like PXRay

Here are some alternatives to PXRay:

PixelSake icon
PixelSake
XScope icon
xScope
Red Lines Tools icon
Red Lines Tools
Suggest an alternative ❐

PixelSake icon

PixelSake

PixelSake is a raster graphics editor software for editing and manipulating digital images. It can be used as an alternative to Adobe Photoshop.Some key features of PixelSake include:Layers - Allows non-destructive editing of images by organizing different elements into stacked layersSelection tools - Create selections and cutouts to isolate and...
XScope icon

XScope

xScope is a feature-rich software suite for graphic designers, web developers, photographers, and other creative professionals. It includes several tools for inspecting, measuring, and testing on-screen content:xScope Ruler: On-screen rulers to quickly measure distances, positions, and sizes.xScope Count: Counts items like words, characters, links, images, and more.xScope Magnifier: Pixel-perfect magnified...
XScope image
Red Lines Tools icon

Red Lines Tools

Red Lines Tools is a powerful source code analysis platform that helps developers write better, more secure code. It scans source code to identify potential vulnerabilities, bugs, anti-patterns, and compliance issues early in the software development lifecycle.Some key features of Red Lines Tools include:Detection of security flaws like SQL injection,...
Red Lines Tools image